Monitors npm, PyPI, and Go module installations for supply chain attack indicators. Detects typosquatting, suspicious postinstall scripts, unexpected network calls, and known malicious packages using the Socket.dev threat feed and OpenSyber threat intelligence.
Sign in and create an instance to install this skill.